Browsing the "request" Tag

Spring Framework up to 5.2.2 cross site request forgery [CVE-2020-5397]

January 18th, 2020 📆 | 3547 Views ⚑

A vulnerability classified as problematic was found in Spring Framework up to 5.2.2. This vulnerability affects an unknown functionality. There

Tagged with: cross • forgery • framework • request • spring

Intelbras WRN240 Firmware incoming/Firmware.cfg POST Request privilege escalation

January 18th, 2020 📆 | 2590 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: firmware • incoming • intelbras • privilege • request • wrn240

Hackers Request Aging Reports to Identify Their Next CEO Fraud Victims for Them

January 16th, 2020 📆 | 3441 Views ⚑

Tagged with: aging • fraud • hackers • identify • reports • request • their

phpBB 3.2.8 Group Avatar cross site request forgery

January 16th, 2020 📆 | 6212 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: avatar • cross • forgery • group • phpbb • request

phpBB 3.2.8 Group Membership cross site request forgery

January 16th, 2020 📆 | 6578 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: cross • forgery • group • membership • phpbb • request

Cisco IOS/IOS XE up to 16.1.0 Web UI cross site request forgery

January 13th, 2020 📆 | 4760 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: cisco • cross • forgery • request

Advisto Peel SHOPPING 9.2.1 utilisateurs.php cross site request forgery

January 12th, 2020 📆 | 3306 Views ⚑

A vulnerability, which was classified as problematic, was found in Advisto Peel SHOPPING 9.2.1. Affected is an unknown function of

Tagged with: advisto • cross • forgery • request • shopping • utilisateurs

Ricoh SP C250DN 1.06 cross site request forgery [CVE-2019-14304]

January 12th, 2020 📆 | 6994 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: 14304 • c250dn • cross • forgery • request • ricoh

nginx up to 1.17.6 Error Page HTTP Request Request Smuggling privilege escalation

January 11th, 2020 📆 | 2239 Views ⚑

CVSS Meta Temp Score Current Exploit Price (≈) CTI Interest Score 5.3 $0-$5k 9.82- A vulnerability classified as critical was

Tagged with: error • escalation • nginx • privilege • request • smuggling

HP DeskJet 3630 SWP1FN1912BR cross site request forgery [CVE-2019-6319]

January 11th, 2020 📆 | 7120 Views ⚑

A vulnerability classified as problematic has been found in HP DeskJet 3630 SWP1FN1912BR. This affects an unknown functionality. There is

Tagged with: cross • deskjet • forgery • request • swp1fn1912br

HP DeskJet 3630 SWP1FN1912BR cross site request forgery [CVE-2019-6320]

January 11th, 2020 📆 | 4739 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: cross • deskjet • forgery • request • swp1fn1912br

Apache Olingo up to 4.7.0 URL AsyncRequestWrapperImpl Server-Side Request Forgery

January 10th, 2020 📆 | 6092 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: apache • asyncrequestwrapperimpl • forgery • olingo • request • server

Minimal Coming Soon & Maintenance Mode Plugin up to 2.10 on WordPress cross site request forgery

January 10th, 2020 📆 | 4787 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: coming • cross • maintenance • minimal • plugin • request • wordpress

Exploiting a Server Side Request Forgery (SSRF) in WeasyPrint for Bug Bounty & HackerOne’s $50M CTF

January 9th, 2020 📆 | 3995 Views ⚑

Live every Sunday on Twitch: https://twitch.tv/nahamsec Follow me on social media: https://twitter.com/nahamsec https://instagram.com/nahamsec https://twitch.com/nahamsec https://hackerone.com/nahamsec https://facebook.com/nahamsec1 Signup for HackerOne: https://nahamsec.stream/HackerOne

Tagged with: bounty • exploiting • forgery • hackerone • request • server • weasyprint

Wildfly Security Manager Request privilege escalation [CVE-2019-14843]

January 9th, 2020 📆 | 1658 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: 14843 • escalation • manager • privilege • request • security • wildfly

D-Link DCS-960L prior 1.07.102 HNAP Service SOAPAction Request Header Stack-based memory corruption

January 8th, 2020 📆 | 5609 Views ⚑

A vulnerability was found in D-Link DCS-960L. It has been rated as critical. Affected by this issue is an unknown

Tagged with: based • header • prior • request • service • soapaction • stack

TP-LINK TL-WR841N Web Service Request Header memory corruption

January 8th, 2020 📆 | 3471 Views ⚑

A vulnerability classified as critical has been found in TP-LINK TL-WR841N (Router Operating System) (the affected version unknown). This affects

Tagged with: corruption • header • memory • request • service • wr841n

Open Ticket Request System up to 5.0.38/6.0.23/7.0.12 information disclosure

January 8th, 2020 📆 | 6888 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: disclosure • information • request • system • ticket

OpenLiteSpeed up to 1.6.4 WebAdmin Console Request unknown vulnerability

January 7th, 2020 📆 | 4390 Views ⚑

CVSS Meta Temp Score Current Exploit Price (≈) CTI Interest Score 5.3 $0-$5k 2.56+ A vulnerability classified as problematic was

Tagged with: console • openlitespeed • request • unknown • vulnerability • webadmin

Ahsay Cloud Backup Suite 8.3.0.30 File Upload /obs/obm7/file/upload PUT Request Code Execution

January 7th, 2020 📆 | 7834 Views ⚑

A vulnerability, which was classified as critical, was found in Ahsay Cloud Backup Suite 8.3.0.30 (Backup Software). Affected is an

Tagged with: ahsay • backup • cloud • request • suite • upload

Cisco Data Center Network Manager SOAP API API Request information disclosure

January 7th, 2020 📆 | 3672 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: center • cisco • disclosure • information • manager • network • request

Subrion CMS 4.0.5 – Cross-Site Request Forgery (Add Admin)

January 7th, 2020 📆 | 8347 Views ⚑

# Exploit Title: Subrion CMS 4.0.5 - Cross-Site Request Forgery (Add Admin) # Date: 2020-01-05 # Exploit Author: Ismail Tasdelen

Tagged with: admin • cross • forgery • request • subrion

Typesetter CMS 5.1 Logout cross site request forgery

January 6th, 2020 📆 | 8414 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: cross • forgery • logout • request • typesetter

GitLab Enterprise Edition up to 12.5 Server-Side Request Forgery

January 4th, 2020 📆 | 4653 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: edition • enterprise • forgery • gitlab • request • server